cleantalk
Vulnerabilities and Security Researches

CM WordPress Search And Replace Plugin, CVE-2025-54728

CVE, Research URL

CVE-2025-54728

Home page URL

Security reports for CM WordPress Search And Replace Plugin

Application

CM WordPress Search And Replace Plugin

Published on
Aug 15, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in CreativeMindsSolutions CM On Demand Search And Replace allows Cross Site Request Forgery. This issue affects CM On Demand Search And Replace: from n/a through 1.5.2.
Affected versions
Min -, max 1.5.3.
Status
vulnerable
Previous vulnerability researches
Inpersttion For Theme (CVE-2025-8905) , Aug 16, 2025
New vulnerability
Billplz Addon for Contact Form 7 (CVE-2025-31007) , Aug 16, 2025
Time Sheets (CVE-2025-49054) , Aug 16, 2025
The Plus Blocks for Block Editor | Gutenberg (CVE-2025-54739) , Aug 16, 2025
WP-Database-Optimizer-Tools (CVE-2025-53219) , Aug 16, 2025
WP Dynamic Links (CVE-2025-49038) , Aug 16, 2025